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AMENDMENTS TO THE CLAIMS 

This listing of claims will replace all prior versions, and listings, of claims in the 
application: 

1. (Currently Amended) A method for encrypting data, the method comprising: 

providing a first data processing system for a first user i nclud i ng th e fi rst us er's 
pr i vat e k e y a nd a mas t e r privat e k e v: and a second data processing system for a second 
user: 

p r o v i d i n g a se c ond data pfeeessif^-system for a secon d u ser incl uding program 

instru c ti ons and the first us e r's pub li c k e y an d m aster p u b li c ke y to g e n erate a s es si or t 

key, to encr ypt or i g in al data us i ng th e s e ss i on k e y, t o en c ry pt th e s e ss i on key w i th the 
f irst u ser's pu b lic key, to e ncrypt th e s e ssion k e y w i th th e mast e r pub li c k ey, to generate 

a -f i fs t d a t a pac ke t i n cl ud i ng a p l ura l ity of e ncrypt e d s e ss i on k eys an d e fi - erypt ed- data, 

and to transmi t the fi r s t d a t a pa c k e t to o ne o r mo re diff e r e nt data proce ssi n g sy ste ms 

instead of or in addition to the fir st data proc e ss i ng syst e m; and 

the f i rst data proc e s sin g syste m r eceiving t he first data packet an d including 
program i nstructions to de c rypt on e of th e e n c r yp te d sess i on k e ys w i th th e pr i vat e k e y of 

th e f i rst us er, and to decrypt th e e ncryp ted d ata w ith the session key to re-create the 

or i g i na l data- 
providing a session key randomly generated by the second system for use in 
encrypting original data; 

encrypting the data using the session key and a symmetric encryption routine; 

encrypting the session key, with a public key of the first user using an 
asymmetric encryption routine, for storage as a first user key blob; 

encrypting the session key, with a master public key using the asymmetric 
encr/ption routine, for storage as a master key blob; 

storing a first user private key on any media; 

decrypting the user key blob using the asymmetric encn/ption routine providing 
the first system with access to the session key; and 

the first system decrypting the data using the symmetric encryption routine and 
securely transmitting the data to the first system. 
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2.-6. 



(Canceled) 



7. (Currently Amended) The method, as set forth in claim 1, further comprising storing the 
first user's private key on a data storage medium coupled to tl^a_destination data 
processing system. 

8. (Previously Presented) The method, as set forth in claim 1, further comprising storing 
the master private key on a data storage medium coupled to the destination data 
processing system. 

9. (Currently Amended) The method, as set forth in claim 7, further comprising retrieving 
the first user's private key from a smart card utilizing a smart card reader coupled to the 
destination data processing system. 

10. (Currently Amended) The method, as set forth in claim 4-7, further comprising retrieving 
the master private key from a smart card utilizing a smart card reader coupled to the 
destination data processing system. 

11. (Original) The method, as set forth in claim 1, further comprising utilizing a plurality of 
public master keys and a plurality of private master keys to decrypt the encrypted 
session key. 

12. (Currently Amended) A method for encrypting data comprising: 

providing a first data processing system for a first user i nc l ud i ng th e first us e r's 
p ri vate k e y an d a mas t er p r i v ate k ey ; and a second data processing system for a 
second user; 



first data pack e t i nc l ud i ng a p lurality of encrypted session keys and encrypted data, 




on ke y ; t o e n c r y p t th e sessio n key w i th th e 
key wit h th e mast e r p ub li c k e y, to g e n e r a t e 



flfSt- 



-public key v to e ncrypt the 
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and to transm i t th e f i rs t d ata p ack e t to on e or m o r e diff e r e nt data proc e ssing syst e ms 
instead of or in addition to th e first data proc e ss i ng syst e m; 

th e first d a ta processing syste m rece i v i ng th e f i rst data pac l ^ e t and i nG lu d i ng 

program i nstructions to d e crypt on e of the e ncrypted se ss i on k eys w i th th e privat e k e y of 
th e f i rst us e r, and to d e c r ypt th e e ncrypt e d d a t a w i th th e s e ss i on key to r e- cr e at e th e 
origina l d ata ; an d 

the m a st e r pub lic k e y a nd the mast e r privat e k ey atl ew ing a n o th er u s e r to g ain 

a cc es s to e ncrypt e d data, th e oth e r us e r ex ecutin g program i nstruct i ons on th e f i rst d a ta 
proc e ss i ng syst em to d e crypt the one en crypt e d s e ssion k e y us i ng th e m ast er private 
k-e y -,-a F ^ d t - e d- e cr ypt the e ncrypted d at a wit h th e sess i on k e y to r e- cr e ate th e o ri g i n al 

providing a session key randomly generated by the second system for use in 
encrypting original data: 

encrypting the data using the session key and a symmetric encryption routine; 

encrypting the session key, with a public key of the first user using an 
asymmetric encryption routine, for storage as a first user key blob: 

encrypting the session key, with a master public key using the asymmetric 
encryption routine, for storage as a master key blob; 

storing a first user private key on any media; 

decrypting the user key blob using the asymmetric encryption routine providing 
the first system with access to the session key; and 

the first system decrypting the data using the symmetric encryption routine and 
securely transmitting the data to the first system and; 

a third party gaining access to the data using a master private key to decrypt the 
master key blob using the asymmetric encryption routine and gain access to the original 
data. 

13.-17.(Canceled) 

18. (Currently Amended) The method as set forth in claim 12, wherein the first user's 
private key is stored on a data storage medium coupled to the second data processing 
system. 
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19. (Previously Presented) The method as set forth in claim 12, wherein the master private 
key is stored on a data storage medium coupled to the second data processing system. 

20. (Currently Amended) The method as set forth in claim 12, further comprising a smart 
card reader coupled to the second data processing system and operable to retrieve the 
first user's private key from a smart card. 

21. (Previously Presented) The method as set forth in claim 12, further comprising a smart 
card reader coupled to the second data processing system and operable to retrieve the 
master private key from a smart card. 

22. (Previously Presented) The method as set forth in claim 12, further comprising: 

a plurality of master private keys; and 
a plurality of master public keys. 

23. -29. (Canceled) 

30. (New) A method for encrypting data comprising: 

providing a first data processing system for a first user and a second data 
processing system for a second user; 

the second user sending the first user a data file; 

the second system randomly generating a session key for use in encrypting 
original data in the data file; 

using the session key, the second system encrypting the data using a symmetric 
encryption routine; 

encrypting the session key, with a public key of the first user using an 
asymmetric encryption routine, for storage as a first user key blob within the encrypted 
data; 

encrypting the session key with a master public key using the asymmetric 
encryption routine, for storage as a master key blob within the encrypted data; 
transmitting the encrypted data to the first system; 
storing a first user private key on any media; 



A-193687_1.DOC 



6 



PATENT 

Docket No.: 16356.722 (DC-01 753) 
Customer No.: 000027683 

decrypting the user key blob using tlie asymmetric encryption routine providing 
the first system with access to the randomly generated session key; 

the first system decrypting the data using the symmetric encryption routine and 
securely transmitting the data to the first system; and 

a third party gaining access to the data using a master private key to decrypt the 
master key blob using the asymmetric encryption routine and gain access to the original 
data. 
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